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REMARKS 

This subject application does not claim the priority of the European application. 
This application is directed to an improvement of the related application serial no. 
10/615,263 for which Texas Instruments does claim priority of the European application. 
The improvement a license proxy software that is provided that will act as a rely agent 
and route all connections from contractor zone into the Intranet. 
The objected specification informalities have been amended. 
Claims 2 through 10 are canceled and claims 1 1 through 14 are added. 
Claim lis amended to clearly define the preamble and the body of the claim. This 
objection is therefore deemed overcome. 

Claims 1-10 are rejected under 35 U.S.C. 102 (e) as being anticipated by Mikurak 
(U.S. Patent no. 6,671,818; hereinafter Mikurak). 

Claim 1 calls for "A method for providing a secure access of a partner to the 
development environment of an owner comprising the steps of : starting a VPN 
tunnel between workstations to establish a secure encrypted tunnel end to end 
wherein each partner is identified with a different VPN group/password; starting a 
session by the partner in a Web page on a portal machine that authenticates through 
LDAP (Lightweight Directory Access Protocol) a user identification and password of 
a user; routing the session to an engagement box depending on the user where the 
engagement boxes each include a server with an operating system and are on network 
segments separated by firewall boxes with another logon/password and is validated 
through second LDAP and wherein all users of the same partner are all launching on 



17 



TI-35593 

the same engagement box; accessing data and applications from engagement box on 
Network File system storage authenticated second LDAP to a design zone common 
resource of said owner with a big compute farm composed of many high-end servers 
in a secure way, submitting batch or interactive jobs to said design zone ; and 
providing for each application host in said design zone a highly secure access to EDA 
licenses from license servers with dynamically changing access ports of said owner 
inside an Intranet of said owner without opening all such access ports for all hosts and 
creating a security risk comprising the steps of: providing a license proxy server in 
said design zone that dynamically determines the addresses of the changing access 
ports of the license servers in said Intranet; and said application hosts inside said 
design zone contacting the license proxy server which in turn fetches the appropriate 
EDA licenses from said license servers in said Intranet of said owner/' 

Mikurak does not teach a design zone as claimed. Mikurak does not teach 
"providing a license proxy server in said design zone that dynamically determines the 
addresses of the changing access ports of the license servers in said Intranet." Mikurak 
does not teach "application hosts inside said design zone contacting the license proxy 
server which in turn fetches the appropriate licenses from said Intranet." The examiner 
references Column 1 17, lines 54-67 and Col. 118, lines 1-5. This part of the reference just 
explains the concept of how a generic license server operates. Generic proxy solutions 
are available in the market do not work with FLEXLM, which is widely used by EDA 
vendors, due to the fact that the license servers use random ports and the firewall 
configurations that allow TCP connections have to be wide open. This proxy server has 
to work differently and has to have the dynamic learning of port changes and adapt to the 
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port changes. This teaching removes the need to open a wide range of TCP ports from 
client to EDA license sever and therefore improves security. In view of the above 
applicant's claim 1, as amended, is deemed allowable. 

Claim 1 1 calls for "providing a license proxy server inside the design zone that listens on 
the FLEXLM manager port; intercepting EDA license requests by the application host by 
said proxy server and said proxy server initiating a connection to said manager daemon of 
said license server on behalf of the application host and FLEXLM responding with port 
number of the vendor daemon in a reply packet; said proxy server intercepting this packet 
and reading the port number and creating another listening socket on the same port as the 
vendor port, and said application host initiating a connection to the vendor port on the 
proxy server which in turn initiates a connection to the vendor port on the license server 
and relays the packets back and forth between the application hosts and the appropriate 
license server." 

This is neither taught nor suggested by the Mikurak reference for the reasons 
discussed above in connection with claim 1 . 

Claim 12 calls for "A system for providing a secure access of one or more 
partners to the development environment of an owner comprising: means for starting a 
VPN tunnel between workstations to establish a secure encrypted tunnel end to end 
wherein each partner is identified with a different VPN group/password; means for 
starting a session by the partner in a Web page on a portal machine that authenticates 
through LDAP (Lightweight Directory Access Protocol) a user identification and 
password of a user; means for routing the session to an engagement box depending on 
the a user where the engagement boxes each include a server with an operating system 
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and are on network segments separated by firewall boxes with another logon/password 
and is validated through second LDAP and wherein all users of the same partner are all 
launching on the same engagement box; means for accessing data and applications from 
an engagement box on Network File system storage authenticated second LDAP to a 
design zone common resource of said owner with a big compute farm composed of many 
high-end servers in a secure way; means for submitting batch or interactive jobs to said 
design zone; and means for providing for each application host in said design zone a 
highly secure access to EDA licenses from license servers with dynamically changing 
access ports of said owner inside an Intranet of said owner without opening all such 
access ports for all hosts and creating security risk comprising: 

a license proxy server in said design zone that determines the dynamically 
changing access ports of the license servers in said Intranet; and 
said application hosts inside said design zone contacting the license proxy server 
which in turn fetches the appropriate EDA licenses from said license servers in 
said Intranet of said owner." 

Claim 12 calls for limitations similar to amended Claim 1 and is deemed 
allowable over Mikurak for at least the same reasons as claim 1 . 
Claim 13 calls for " A method for providing a secure access of one or more partners 
to the development environment of an owner comprising the steps of : starting a VPN 
tunnel between workstations to establish a secure encrypted tunnel end to end 
wherein each partner is identified with a different VPN group/password; starting a 
session by the partner in a Web page on a portal machine that authenticates through 
LDAP (Lightweight Directory Access Protocol) a user identification andj>assword of 
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a user; routing the session to an engagement box depending on the user where the 
engagement boxes each include a server with an operating system and are on network 
segments separated by firewall boxes with another logon/password and is validated 
through second LDAP and wherein all users of the same partner are all launching on 
the same engagement box; accessing data and applications from an engagement box 
on Network File system storage authenticated second LDAP to a design zone 
common resource of said owner with a big compute farm composed of many high- 
end servers in a secure way; submitting batch or interactive jobs to said design zone; 
and providing for each application hosts in said design zone a highly secure access to 
EDA licenses from FLEXLM controlled servers of said owner inside an Intranet of 
said owner without a security risk of opening all ports greater than 1023 for all hosts 
in the design zone, where FLEXLM has a manager daemon and a vendor daemon and 
said vendor daemon has a random changing port number above 1023 for access and 
said manager daemon listens on a known TCP port that is greater than 1023 and 
when an application host makes a connection to this known port FLEXLM replies 
back with the port on which the vendor daemon is, comprising the steps of: 
providing a license proxy server inside the design zone that listens on the FLEXLM 
manager port and intercepts EDA license requests by the application host and initiates a 
connection to a manager daemon of said license server on behalf of the application host, 
said license manager responding with port number of the vendor daemon in a reply 
packet; said proxy server intercepting said reply packet and reading the port number and 
creating another listening socket on the same port as the vendor port, and said application 
host initiating a connection to the vendor port on the proxy server and said proxy server 
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initiating a connection to the vendor port on the license server and relays the packets back 
and forth between the application hosts and the appropriate license server." 

Claim 13 calls for limitations similar to that of both claims 1 and 1 1 and are 
deemed allowable for at least the same reasons. 

Claim 14 calls for limitations similar to claim 13 and is deemed allowable for at 
least the same reasons as claim 13. 

Since there is no other reason for rejection, applicant's claim 1, as amended, and 
newly added claims 1 1-14, are deemed allowable and an early notice of allowance is 
deemed in order and is respectfully requested. 



Respectfully submitted; 




Robert L. Troike (Reg. 24183) 



Telephone No.(301) 751-0825 
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